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300110457 

METHOD AND APPARATUS FOR ENCRYPTING DATA 

5 The present invention relates to a method and system for encrypting data. 

With the wide spread use of the Internet commercial transactions over the 
Internet have become commonplace. However, unlike commercial 
transactions that are conducted face-to-face, transactions over the Internet 
10 typically involve the exchange of private and confidential information, for 
example providing access to a party's bank account details, credit card details 
and home address. 

Accordingly, many individuals still have concerns over confidentiality; as a 
1 5 result the full potential of the Internet is still not being utilized. 

It is desirable to improve this situation. 

In accordance with a first aspect of the present invention there is provided a 
20 computer system comprising a first computer entity arranged to encrypt a first 

data set with a first encryption key associated with a third party to generate a 

third data set and encrypt a fourth data set with the third data set; 

communication means for providing the encrypted fourth data set to a second 

computer entity and the third data set to a third computer entity associated 
25 with the third party; wherein the third computer entity is arranged to generate 

a decryption key using the third data set to allow the second computer entity 

to decrypt the encrypted fourth data set. 

This provides the advantage of restricting access to information associated 
30 with a transaction between a first and second party such that the parties to the 
transaction only have access to information relevant to them. For example, for 
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a transaction between a first and second party the second party may only 
need to know that they will be paid, accordingly credit card or bank account 
details can be encrypted and forward to the first party's bank who, on 
decrypting the information, can then credit the second party's account, 
5 thereby ensuring that the second party does not have access to the first 
party's bank account or credit card details. 

Preferably the first encryption key corresponds to a public key associated with 
the third party. 

10 

Preferably the third computer entity is arranged to decrypt the third data set 
with the third party's corresponding private key. 

Preferably the first data set corresponds to a message for the third party. 

15 

Preferably the third computer entity is arranged to provide the decryption key 
to the second computer entity. 

In accordance with a second aspect of the present invention there is provided 
20 a computer apparatus comprising a processor arranged to encrypt a first data 
set with a first encryption key associated with a third party to generate a third 
data set and encrypt a fourth data set with the third data set. 

Preferably the computer apparatus further comprises means for providing the 
25 encrypted fourth data set to a second computer entity. 

In accordance with a third aspect of the present invention there is provided a 
method for encrypting data comprising encrypting a first data set with a first 
encryption key associated with a third party to generate a third data set and 
30 encrypting a fourth data set with the third data set. 
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For a better understanding of the present invention and to understand how 
the same may be brought into effect reference will now be made, by way of 
example only, to the accompanying drawings, in which:- 

5 Figure 1 illustrates a computer system according to an embodiment of the 
present invention; 

Figure 2 illustrates the generation of encrypted data according to an 
embodiment of the present invention. 

10 

The present embodiment describes a computer system that allows a user to 
place an electronic order with a service provider where the service provider 
has restricted access to the user's private and confidential information 
necessary to complete the order. 

15 

In particular, the user is able to place an electronic order with the service 
provider, where confidential information required by the service provider to 
complete the transaction, for example the user's address, is encrypted with an 
encryption key, where the encryption key is in itself an encrypted message 

20 from the user to the user's bank. The bank, acting as a trusted authority, is 
the only entity that is able to derive the associated decryption key. 
Accordingly, for the service provider to complete the transaction the service 
provider must provide the encryption key to the bank to allow the bank to 
derive the associated decryption key. On receipt of the encryption key the 

25 bank decrypts the encryption key to access the message, that can, for 
example, include instructions to pay the service provider, while also providing 
the associated decryption key to the service provider to allow them to decrypt 
the encrypted confidential information provided by the user to the service 
provider. 

30 

Figure 1 illustrates a computer system 10 according to an embodiment of the 
present invention. Computer system 10 includes a first computer entity 11, a 
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second computer entity 12 and a third computer entity 13. Typically the three 
computer entities 11, 12, 13 would be configured on separate computer 
platforms, however the computer entities 11, 12, 13 could be configured on a 
single computer platform. For the purposes of this embodiment, however, the 
5 three computer entities 11, 12, 13 are coupled via a network 14, for example 
the Internet. 

Associated with the second computer entity 12 is a service provider 18 that 
offers goods and/or services over the service provider's website (not shown) 
10 accessible via the network 14, however, as would be appreciated by a person 
skilled in the art the service provider 18 could offer goods and/or services via 
a variety of ways, for example via email. 

The first computer entity 11 is configured to allow a user 19 to access the 
15 service provider 18, via the second computer entity 12, to allow the user 19 to 
place an order with the service provider 18 for goods and/or service, as 
described below. 

Associated with the third computer entity 13 is a bank 15 with which the user 
20 19 has a bank and credit card account. The bank 15 is configured to act as a 
trust authority 16. Additionally, the bank 15, acting as a trust authority 16, 
makes publicly available the trust authorities public data 17, as described 
below. As would be appreciated by a person skilled in the art the trust 
authorities public data 17 can be made available in a variety of ways, for 
25 example via a public web site (not shown). 

Using the first computer entity 11 the user 19 completes an order form for 
ordering specific goods and/or services from the service provider 18 where 
information within the order form may have different categorisations, for 
30 example part of the order may be deemed non-confidential such as goods 
and/or services required and associated quantities, while other parts of the 
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order may be deemed to be confidential, such as the user's address required 
for delivery. However, payment details are not included within the order 

In addition, however, the user 19 also generates a payment message for the 
5 attention of the user's bank 15 that contains payment information relevant to 
the user's order with the service provider 18, for example the user's bank 
account number and the amount to be paid to the service provider 18. 

Using the first computer entity 11 the user 19 generates an encryption key to 
10 encrypt the order form for goods and/or services required from the service 
provider 19 where the encryption key is derived by encrypting the payment 
message with a public key associated with the bank 15 from which the user 
19 derives a representative digital string of data bits (i.e. the public key string) 
where this string acts as the user's encryption key. As such, the encryption 
15 key is derived using an identifier based encryption IBE scheme, where the 
following description is based upon a QR based IBE scheme, however, other 
IBE schemes could be used, for example schemes based upon Tate and Weil 
pairings. 

20 The bank's public key used to encrypt the payment message can be obtained 
by any suitable means, for example the public key could be PKI based or 
identity based encryption IBE based. 

Once the encryption key has been derived the confidential information can be 
25 encrypted with the encryption key, as described below, thereby allowing the 
user 19 to forward to the service provider 18 an encrypted order form. Where 
the information within the order form has been categorised as either 
confidential or non-confidential only the confidential information need be 
encrypted, in this situation the order form would consist of a combination of 
30 plaintext and encrypted text. 
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To allow the user 19, using the first computer entity 11, to generate an 
encryption key and encrypt the order form the user may use a software plug- 
in 20. 

5 The software plug-in 20 may, for example, be obtained from the trust 
authority's web site (not shown) where the plug-in 20 can be installed within 
the user's web browser (not shown). The plug-in 20 embeds knowledge 
regarding the trust authorities public details N, # 17, as described below. 

10 The plug-in 20 is arranged to encrypt the order form information classified as 
confidential, where each bit of the information is defined by M, as described 
below. 

The trust authorities public data 17 includes a hash function # and a value N 
15 that is a product of two random prime numbers p and q, where the values of p 
and q are only known to the trust authority. 

The hash function # has the function of taking a string and returning a value in 
the range 0 to N. Additionally, the hash function # should have the jacobi 
20 characteristics: jacobi (#, N) = 1. That is to say, where x 2 =#rnodN the jacobi 
(#, N) = -1 if x does not exist, and = 1 if x does exist. 

The values of p and q should ideally be in the range of 2 511 and 2 512 and 
should both satisfy the equation: p,q = 3mod4. However, p and q must not 
25 have the same value. 

To encrypt each bit M of the order form the user 19 generates random 
numbers r + (where t + is an integer in the range [0, 2 N )) until the user 19 finds 
a value of t + that satisfies the equation jacobi(t + ,N) = M , where M 
30 represents the individual binary digits 0, 1 of the user's data as -1, 1 
respectively. The user 19 then computes the value: 
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5 + = (t + +# (publickeystring) /t + ) mod N . 

for each bit M where s+ corresponds to the encrypted bit of M. 

5 

In case #(publickeystring) is non-square the user 19 additionally generates 
additional random numbers t_ (integers in the range [0, 2 N )) until the user 19 
finds one that satisfies the equation jacobi(t_,N)=m. The user 19 then 
computes the value: 

10 

s_ = (t_ -# (publickeystring) It J) mod N 
for each value of bit M. 

1 5 The non-encrypted and encrypted order form information and encryption key 
is made available to the service provider 18 by any suitable means, for 
example via e-mail or by being placed in a electronic public area. 

For the service provider 18 to recover the associated decryption key the 
20 service provider 18 provides the encryption key, as used by the user 19 to 
encrypt the order form, to the trust authority 16. 

The trust authority 16 determines the associated decryption key B by solving 
the equation : 

25 

B 2 =# (publickeystring) mod N 

If a value of B does not exist, then there is a value of B that is satisfied by the 
equation: 

30 
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B 2 = -# (publickeystring) mod TV 

As N is a product of two prime numbers p, q it would be extremely difficult for 
any one to calculate the private key B with only knowledge of the public key 
string and N. However, as the trust authority 16 has knowledge of p and q (i.e. 
two prime numbers) it is relatively straightforward for the trust authority 16 to 
calculate B. 

Any change to the encryption key wiH result in a decryption key that will not 
decrypt the order form correctly, thereby preventing the service provider from 
understanding the order. 

If the square root of the encryption key returns a positive value, the user's 
data M can be recovered using: 

M = jacobi(s+ + 2B, N) . 

If the square root of the encryption key returns a negative value, the user's 
data M can be recovered using: 

M = jacobi(s _ + 2B 9 N) . 

The service provider 18 uses the appropriate equation above, in conjunction 
with the encryption key, to decrypt the message and on receipt of payment 
from the trust authority, as described below, the service provider provides the 
requested goods and/or services to the user 19. 

Additionally, the trust authority decrypts the encryption key using the 
appropriate trust authorities private key, thereby allowing the trust authority to 
read the payment message created by the user 1 9. 
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Accordingly, in accordance with the user's instructions contained within the 
payment message the trust authority 16 initiates payment to the service 
provider 18 for payment of the goods and/or services ordered by the user 19 
without the service provider 18 requiring any access to the user's payment 
5 details. 

Further, the encryption key derived from the encrypted payment message 
could be made dependent on dynamic information, for example time and/or a 
random number. 

10 

Additionally, the communication between the various parties can make use of 
standard protocols such as HTTP and SOAP. Further, where required secure 
connections can be established using secure protocols such as SSL. 

15 Figure 2 illustrates the stages of encryption of data associated with a 
transaction between the user 19 and the service provider 18. 

The trust authority 16 publishes its public details N, # 17. 

20 The first computer entity 11, using a public key 20 associated with the trust 
authority 16, encrypts a payment message 21 intended for the trust authority 
16 to generate an encryption key 22. The first computer entity 11 then, using 
the encryption key 22, encrypts an order form 23 intended for the service 
provider 18 to generate encrypted data 24. 

25 

The encryption key 22 is provided to the third computer entity 13 to allow the 
trust authority 16 to decrypt the payment message 21 and derive an 
associated decryption key 25 for the encrypted data 24. 

30 The encrypted data 24 is provided by the first computer entity 11 to the 
second computer entity 12 with the third computer entity 13 providing the 
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associated decryption key 25 to the second computer entity 12, thereby 
allowing the service provider 18 to decrypt the order form 23. 
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A computer system comprising a first computer entity arranged to 
encrypt a first data set with a first encryption key associated with a 
third party to generate a third data set and encrypt a fourth data set 
with the third data set; communication means for providing the 
encrypted fourth data set to a second computer entity and the third 
data set to a third computer entity associated with the third party; 
wherein the third computer entity is arranged to generate a 
decryption key using the third data set to allow the second computer 
entity to decrypt the encrypted fourth data set. 

A computer system according to claim 1, wherein the first 
encryption key corresponds to a public key associated with the third 
party. 

A computer system according to claim 1 or 2, wherein the third 
computer entity is arranged to decrypt the third data set with the 
third party's corresponding private key. 

A computer system according to any preceding claim, wherein the 
first data set corresponds to a message for the third party. 

A computer system according to any preceding claim, wherein the 
third computer entity is arranged to provide the decryption key to 
the second computer entity. 

A computer apparatus comprising a processor arranged to encrypt 
a first data set with a first encryption key associated with a third 
party to generate a third data set and encrypt a fourth data set with 
the third data set. 
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7. A computer apparatus according to claim 6, further comprising 
means for providing the encrypted fourth data set to a second 
computer entity. 



5 8. A computer apparatus according to claim 6 or 7, wherein the first 
data set corresponds to a message for the third party. 



9. A computer apparatus according to any of claims 6 to 8, wherein 
the first encryption key corresponds to a public key associated with 
10 the third party. 



10. A method for encrypting data comprising encrypting a first data set 
with a first encryption key associated with a third party to generate a 
third data set and encrypting a fourth data set with the third data 

15 set. 

11. A method according to claim 10, further comprising providing the 
fourth data set to a second party. 



20 12. A method according to claim 11, further comprising providing the 
third data set to the third party to allow the generation of a 
decryption key using the third data set to allow the second party to 
decrypt the encrypted fourth data set. 



25 13. 



A method according to claim 12, further comprising providing to the 
second party from the third party the decryption key. 
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ABSTRACT 

METHOD AND APPARATUS FOR ENCRYPTING DATA 

5 

A computer system comprising a first computer entity arranged to encrypt a 
first data set with a first encryption key associated with a third party to 
generate a third data set and encrypt a fourth data set with the third data set; 
communication means for providing the encrypted fourth data set to a second 
10 computer entity and the third data set to a third computer entity associated 
with the third party; wherein the third computer entity is arranged to generate 
a decryption key using the third data set to allow the second computer entity 
to decrypt the encrypted fourth data set. 

15 
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